openSUSE-SU-2019:1889-1

See a problem?

Import Source

https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2019:1889-1.json

JSON Data

https://api.test.osv.dev/v1/vulns/openSUSE-SU-2019:1889-1

Upstream

CVE-2019-11372

CVE-2019-11373

Related

Published

2019-08-14T11:56:59Z

Modified

2025-05-08T17:45:38.195303Z

Summary

Security update for libmediainfo

Details

This update for libmediainfo fixes the following issues:

CVE-2019-11373: Fixed out-of-bounds read in function File_Analyze:GetL8 (boo#1133156)
CVE-2019-11372: Fixed out-of-bounds read in function MediaInfoLib:File_TagsHelper:Synched_Test (boo#1133157)

This update was imported from the openSUSE:Leap:15.0:Update update project.

References

Affected packages

SUSE:Package Hub 15 SP1 / libmediainfo

Package

Name: libmediainfo
Purl: pkg:rpm/suse/libmediainfo&distro=SUSE%20Package%20Hub%2015%20SP1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

18.03-bp151.4.3.2

Ecosystem specific

{
    "binaries": [
        {
            "libmediainfo0-64bit": "18.03-bp151.4.3.2",
            "libmediainfo0": "18.03-bp151.4.3.2",
            "libmediainfo-devel": "18.03-bp151.4.3.2"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2019:1889-1.json"